HN Security's Technical Director Marco Ivaldi walks through using idalib's Rust bindings with IDA 9.2 to streamline vulnerability research.

Les Intents Android mal configurés peuvent exposer vos données. Découvrez comment éviter l’intent hijacking et sécuriser vos applications.

Eclypsium researchers have discovered UEFI shells, authorized via Secure Boot, on Framework laptops. The UEFI shells contain capabilities that allow attackers to bypass Secure Boot on roughly 200,000 affected Framework laptops and desktops.

The Model Context Protocol (MCP) has rapidly emerged as the standard for connecting AI agents to external tools and services. However, as the recent GitHub MCP vulnerability demonstrated, the protocol's power comes with significant security challenges. Malicious…

Deep dive into a modern stealth Linux kernel rootkit with advanced evasion and persistence techniques

Note from editor: Before we begin, a big welcome to McCaulay Hudson, the newest member of the watchTowr Labs team with his inaugural blog post! Welcome to the mayhem, McCaulay!

Today is the 8th of November 1996, and we’re thrilled to be exploring this new…

A collection of free,  tools focused on security and convenience, including SSL validation, Base64 encoding, and more.

I recently came across an article detailing a campaign using browser cache smuggling and ClickFix to deliver malware to a system. I found…

Cyops Consulting provides trusted cybersecurity advisory services in Australia, leveraging over 25 years of experience in federal government and defence. Our expert team is dedicated to transforming organisational risk into resilience, ensuring your security…

As it turns out they don't actually want you to do this (and have some interesting ways to stop you)

Check my other posts & tools MeetC2 & AWS XRayC2..

Complete evidence package documenting Google Gemini AI autonomously initiating a 911 emergency call despite explicit user refusal on October 12,...

Overview The Common Vulnerabilities and Exposures system recently identified an alarming flaw with the ID CVE-2025-8941, affecting the Pluggable Authentication Modules (PAM) in Linux operating systems. This vulnerability has significant implications, particularly…

DefenderWrite tool that helps find programs whitelisted by Antivirus and exploits these programs to write arbitrary files into the Antivirus's folder

Impacted by the F5 data breach? You may be ennoscriptd to legal compensation. My Data Breach Attorney can help protect your rights.

Overview

An undocumented parameter of the "web-auth" command could allow an authenticated attacker to execute commands remotely due to improper input sanitization, potentially resulting in full device compromise.

A vulnerability in the zysh-cgi component of the USG/ATP Series allows a low-privileged, semi-authenticated attacker to access the device’s configuration, bypassing authorization controls. This issue arises due to missing authorization checks and an incomplete…